CVE-2018-14629
Description
A denial of service vulnerability was discovered in Sambas LDAP server before versions 4.7.12, 4.8.7, and 4.9.3. A CNAME loop could lead to infinite recursion in the server. An unprivileged local attacker could create such an entry, leading to denial of service.
Risk Information
Base Score
6.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
13.621
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| SMB/CIFS file, print, and login server for Unix (USN-3827-1) samba_4.8.4+dfsg-2ubuntu2.1_i386.deb | Linux |
| SMB/CIFS file, print, and login server for Unix (USN-3827-1) samba_4.8.4+dfsg-2ubuntu2.1_amd64.deb | Linux |
| SMB/CIFS file, print, and login server for Unix (USN-3827-1) samba_4.7.6+dfsg~ubuntu-0ubuntu2.5_i386.deb | Linux |
| SMB/CIFS file, print, and login server for Unix (USN-3827-1) samba_4.7.6+dfsg~ubuntu-0ubuntu2.5_amd64.deb | Linux |
| SMB/CIFS file, print, and login server for Unix (USN-3827-1) samba_4.3.11+dfsg-0ubuntu0.14.04.19_i386.deb | Linux |
| SMB/CIFS file, print, and login server for Unix (USN-3827-1) samba_4.3.11+dfsg-0ubuntu0.14.04.19_amd64.deb | Linux |
| SMB/CIFS file, print, and login server for Unix (USN-3827-1) samba_4.3.11+dfsg-0ubuntu0.16.04.18_i386.deb | Linux |
| SMB/CIFS file, print, and login server for Unix (USN-3827-1) samba_4.3.11+dfsg-0ubuntu0.16.04.18_amd64.deb | Linux |
| samba security update(DSA-4345-1) samba_4.5.12+dfsg-2+deb9u4_i386.deb | Linux |
| samba security update(DSA-4345-1) samba_4.5.12+dfsg-2+deb9u4_amd64.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234